SoheilKhodayari / TheThing

Related projects ⓘ

Alternatives and complementary repositories for TheThing

• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆56Updated 9 months ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆49Updated this week
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆43Updated this week
• msrkp / MXSS
  Awesome MXSS ??
  ☆45Updated last month
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆85Updated 6 months ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆99Updated 3 weeks ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆29Updated 2 weeks ago
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆132Updated 2 months ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• GitHubSecurityLab / ruby-unsafe-deserialization
  Proof of Concepts for unsafe deserialization in Ruby
  ☆11Updated 3 weeks ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆51Updated 5 months ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆41Updated 2 years ago
• RUB-NDS / xsinator.com
  XS-Leak Browser Test Suite
  ☆73Updated 10 months ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• neex / ghostinthepdf
  ☆158Updated 3 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆11Updated last year
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆29Updated 7 months ago
• albinowax / albinowaxUtils
  ☆13Updated 2 months ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆66Updated last year
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆37Updated 5 months ago
• defparam / haptyc
  ☆92Updated 3 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆30Updated 3 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆87Updated last year
• elttam / rsu-cracker
  ☆31Updated last year
• p4k03n4t0r / http-request-smuggling
  Blog about HTTP Request Smuggling, including a demo application.
  ☆23Updated 2 years ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆137Updated 3 months ago